Xora   •  

Burlington, MA

11 - 15 years

Posted 176 days ago

This job is no longer available.

ClickSoftware is looking for an experienced CISO (Chief Information Security Officer) to establish and maintain the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected and maintained. You will be the one to devise the company’s IT strategy and ensure that all systems and assets necessary to support its operations and objectives are in place.  The right candidate will have a strong background in SaaS and cloud operations and security and must be comfortable interfacing with customers and prospects, helping to drive sales and handling customer objections. Apart from their education and experience, they must have every quality of a leader and a strong strategic and business acumen.

The goal is to ensure that information technology adds the maximum value to our company so as to facilitate the success of our business and ensure the security of our and our customers’ data.

Duties & Responsibilities:

  • Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.
  • Manage the IT organization, consisting of direct reports and indirect reports including hiring, training, staff development, performance management and annual performance review. Functions will include infrastructure and business applications.
  • Serve as Click’s DPO (Data Privacy Officer)
  • Cross-department collaboration and communication to ensure appropriate securityprocesses, procedures and tools are installed, monitored, and effectively operating and alerting.
  • Strategy, planning, and operational excellence through continuous improvement and automation.
  • Manages service levels, control effectiveness, control failure remediation, operational automation and oversight of information security team
  • Oversee the administration of all information security technology platforms, ensuring that technologies are optimally configured and maintained to provide maximum uptime and protection to the organizations’ information systems.
  • Play a primary role in the selection of new information security technologies.
  • Conduct regular technical risk assessments/audits of systems and infrastructure.
  • Oversee and directly participate in the installation, configuration, and monitoring of new technologies.
  • Liaise with corporate compliance, audit, legal and HR management teams as required, including overseeing annual audits and reporting as required.
  • Develop, maintain and publish up-to-datesecurity policies, standards and guidelines, and oversee training and dissemination of security policies and practices.
  • Provide technical leadership for all information security platforms.
  • Serve as the escalation point for technical issues related to information security platforms.
  • Take the lead role in responding to and containing information security related incidents.
  • Take a lead role in developing and managing information security programs, including, but not limited to; information security awareness, vulnerability management, vendor risk management and risk management.
  • Conduct regular technical risk assessments/audits of systems and infrastructure.
  • Engage proactively in risk management activities.
  • Assist in the development and knowledge transfer to IT team members, as well as other enterprise groups.
  • Promote a culture of information security across all business units.

 Required Education and Experience

  • Bachelor’s or Master’s Degree in Information Technology, Computer Science, Engineering or related field.
  • CISA, CISM, CISSP or similar certification required.
  • In-depth knowledge of applications, systems, network and data security, telecommunications, security operations, and associated hardware, software and protocols.
  • 10+ years of full time experience in dedicated, technical information security roles.

 Additional Technical Requirements

  • Background in information technology in an area such as; networking, programming, database management or systems administration.
  • Strong knowledge of information security principles and practices.
  • Experience with incident response and analysis, preferably in a leadership role.
  • Experience performing packet analysis.
  • Strong knowledge of IDS/IPS, firewalls, proxies and other networksecurity technologies.
  • Strong knowledge of host-based information security technologies.
  • Strong knowledge of Incident Analysis and response concepts and techniques.
  • Strong knowledge of security implications involving a variety of technologies including but not limited to; Microsoft, Cisco, Unix/Linux, EMC, and other market leaders in technology solutions, including mobile devices.